Ukrzaliznytsia, Ukraine's national railway operator, faced a systematic, complex, and multi-layered cyberattack that disrupted its online ticket purchasing services and mobile application. Despite the cyber onslaught, train schedules were unaffected. The railway, crucial for transporting civilians, soldiers, aid, and goods, has intensified its ticketing staff to manage the increased manual demand. Cybersecurity agencies are investigating, with prior attacks linked to Russian state actors.
Source: https://therecord.media/ukraine-railway-ukrzaliznytsia-cyberattack-online-ticket-system
TPRM report: https://scoringcyber.rankiteo.com/company/jsc-ukrainian-railway
"id": "jsc603032425",
"linkid": "jsc-ukrainian-railway",
"type": "Cyber Attack",
"date": "3/2025",
"severity": "100",
"impact": "5",
"explanation": "Attack threatening the organization’s existence"{'affected_entities': [{'industry': 'Transportation',
'location': 'Ukraine',
'name': 'Ukrzaliznytsia',
'type': 'Government-owned enterprise'}],
'attack_vector': ['Online ticket purchasing services', 'Mobile application'],
'description': "Ukrzaliznytsia, Ukraine's national railway operator, faced a "
'systematic, complex, and multi-layered cyberattack that '
'disrupted its online ticket purchasing services and mobile '
'application. Despite the cyber onslaught, train schedules '
'were unaffected. The railway, crucial for transporting '
'civilians, soldiers, aid, and goods, has intensified its '
'ticketing staff to manage the increased manual demand. '
'Cybersecurity agencies are investigating, with prior attacks '
'linked to Russian state actors.',
'impact': {'operational_impact': 'Disruption of online ticket purchasing '
'services and mobile application',
'systems_affected': ['Online ticket purchasing services',
'Mobile application']},
'investigation_status': 'Investigating',
'threat_actor': 'Russian state actors',
'title': 'Cyberattack on Ukrzaliznytsia',
'type': 'Cyberattack'}